src/json-stringifier.cc - Issue 2069563002: [json] detect overflow sooner when serializing large sparse array.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/json-stringifier.cc

Issue 2069563002: [json] detect overflow sooner when serializing large sparse array. (Closed) Base URL: https://chromium.googlesource.com/v8/v8.git@master

Patch Set: check string length upfront Created 4 years, 6 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: src/json-stringifier.cc

diff --git a/src/json-stringifier.cc b/src/json-stringifier.cc

index 51899a9c8bc765a4a7587416a4643ac19af0edab..10f157333c62aa254c0dac6c57b0951283cd7aad 100644

--- a/src/json-stringifier.cc

+++ b/src/json-stringifier.cc

@@ -476,6 +476,12 @@ JsonStringifier::Result JsonStringifier::SerializeJSArray(

JsonStringifier::Result JsonStringifier::SerializeArrayLikeSlow(

Handle<JSReceiver> object, uint32_t start, uint32_t length) {

+ // We need to write out at least two characters per array element.

+ static const int kMaxSerializableArrayLength = String::kMaxLength / 2;

+ if (length > kMaxSerializableArrayLength) {

+ isolate_->Throw(*isolate_->factory()->NewInvalidStringLengthError());

+ return EXCEPTION;

+ }

for (uint32_t i = start; i < length; i++) {

Separator(i == 0);

Handle<Object> element;

@@ -485,6 +491,8 @@ JsonStringifier::Result JsonStringifier::SerializeArrayLikeSlow(

Result result = SerializeElement(isolate_, element, i);

if (result == SUCCESS) continue;

if (result == UNCHANGED) {

+ // Detect overflow sooner for large sparse arrays.

+ if (builder_.HasOverflowed()) return EXCEPTION;

builder_.AppendCString("null");

} else {

return result;

« no previous file with comments | « no previous file | src/string-builder.h » ('j') | no next file with comments »